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Data Structure Definitions in ASN.l 



permissionChain SEQUENCE OF permissionLink 

permissionLink ::= SEQUENCE { 

permi s s ionLinkComponent permi s s ionLinkCoinponent , 
Signature OCTET STRING 



permissionLinkComponent ::= SEQUENCE { 

Name OCTET STRING, 

Uri OCTET STRING, 

Description OCTET STRING, 

Note OCTET STRING, 

Version INTEGER, 

Src_j) INTEGER, 

Src_q INTEGER, 

Src_g INTEGER, 

Src_pub INTEGER, 

Src_x509cert OCTET STRING, 

Src_eTnail OCTET STRING, 

Subj_p INTEGER, 

Subj__q INTEGER, 

Subj_g INTEGER, 

Subj_pub INTEGER, 

Subj_x509cert OCTET STRING, 

Subj^email OCTET STRING, 

Delegate BOOLEAN, 

Read BOOLEAN, 

Write BOOLEAN, 

validFrom General izedTime, 

validTo General izedTime 
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See http://www.ietf.org/rfc/rfc2616.txt) . 



GET /resource/ HTTP/1.1 

Accept: image/gif^ image/x-xbitmap, image/ jpeg, iraage/pjpeg, 
application/vnd.ms-powerpoint , application/vnd.ms-excel, 
application/rasword, */* 
Accept-Language : en-us 
Accept-Encoding: gzip^ deflate 

User-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0) 

Vchain : 5 0U+F6 lolMM JzRmZs 6QNRhxlUE3artX4 ax5 6AJdJxYR7dzyPNglg+cwEOz z j T+ 

vSywbpyuugQvj luZSSVDf kbje/C+ISIV8sLfp5d3eaTykzeP+si Jxl7wg3nj zn2inL0nRKrXw 

WuX6gW3gR7 62VuIz0ylwS9bZzSiu+ImN/SaHRS3eqBFPL7Ye01Jzin4jH8104 6kLpiXB+O 

CloFRqsCmy5/JCrgvR01Rw2rolg6uXgK8xKdybfSXPkJx4wlA0d9GdGAqRycOGFoXty2pS 

+bASvdt2UJMssCXAKTw5bi+sUzuTbeX2xPJwDsPvuevICZHVGwnqJemvVUrHlDdhnMzYzF 

ZfTqeZ6sYAZCvsAiCYghRB6fK9JJV/vj9CzFlvfyFPfYYH750NHjMdDr5qrVbSin4hK2GFZ 

IVPnyxYHwTafKHhbU2aQ5KFZbBGMwIikfBRMVfsqz3hpKa5Pd+NZELIwQ4FWlWgrIzL+jw 

LelCfDk2V4SntsK+CFxBVGbU6dWpQYe2x0Bjat5yjbgYfXdz/vXfNxjHoAiUYwt4ZNwK0+ 

UG78+Elrtw2UoIUPuQoCpCXh9EMeaACc7gSKY2KfuY10FeCHZ00cl6a4M82DUtE6JhrX6U 

fR08r9QmxVnZuO/MW2vbWNS6rCUvsw78zWpChy3VllbxTyofETq9WofZ3u+bomL8WgchTd 

/QPyHMaky37tXEhrjZxUkgJtIOoA12kVaTDERIwBnhQYM3mzp48n8wCq8qH2JP78DSOQwC 

HMolJQPmjfaOxaCR5wE9inhJGHjtTOpXx3GkLNlNuZYq7tbxYznGNJ2VgwUPpCQppohcWmF 

B177 90cTc59zt9kV6A3MyeI/lZCP5iW+VjPEa6h5CWhqHDT3mvDXSAJ8Wx66XiIEJmt2il 

lDpnt0phJpCDAPyM2XO2bJGrPnimSbUsaELQWdMmtUyc2y5TDIlpqjKMNUlytlHdmN2jly 

2+hHplkzgxxXKhilI/JtC97X2GBbm7nlUnICG6sAbxq61BHX5sNslTzWChjYhtFlMuCezT 

Umf lLBgGPgh6Uv3oyUVoasRrasKi6qbqweDdxXfZD3uFR/iJNLUzwnt3/PJwtPJpJHJ+Sia 

/hkB9+alMZXfSkMQaBpAE7/BfzRHs+09fDTL+kBFdO0wGfvkTo9AlfVF99wiAJ0hZt7q-fe 

GWkPi5SRO+9/T71Gr7wNvC9NELRfsziq/v+8LM17 9yj jCm0chAZTv0 9iA8i28gQotzjdFX 

lfE3vL0winrP/61GSfqZhWc2Ho/in7FmqA9pJQVCRsVXXQOSWAZdPC3a75Jxyoa8hHDxgluK 

RaAFlxQboHeRlZ9GQHoia9ucQORhrbIuOS20Af j99QjmszP3gQ64Pw+EakfS+lYQYbauY9 

Z+8bRf+GBJnhRZIvcyu5ylRW7 4goguqs6BSf 6NcuC3rBJhf30xnl51/a8SraFtzUR4rv+e 

qjQyE- 

Connection: Keep-Alive 

Host: www . websitexyz . com 

HTTP/1.0 200 OK 

Content-Length: 16485 

Content-Type : text /html 

<html><head><title>WebsiteXYZ</title> 




Se3AA.v A^"^:^ -yerrw^cA as part of a "cookie" within an HTTP request 
^qp^ http://www.ietf.org/rfc/rfc2616.txt and http://www.ie tf.org/rfc/rfc2109.txty 



GET /resource/ HTTP/1.1 

Accept: image/gif, image/x-xbitmap, image/ jpeg, image/pjpeg, 
application/ vnd . ms-powerpoint , application/ vnd . las-excel , 
application/msword, */* 
Accept-Language : en-us 
Accept-Encoding: gzip/ deflate 

User-Agent: Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0) 

Cookie: Vchain-50U+F61olMMJzRmZs6QNRhxlUE3artX4ax56AJdJxYR7dzyPNglgtcw 

EOzzjT+vSywbpyuugQvj luZSSVDf ]cbje/C+NV8sLfp5d3eaTykzeP+si Jxl7wg3nj zn2mL 

OnRKrXwWuX6gW3gR7 6zVuIz0ylwS9bZ;zSiu-MmN/SaHRS3eqBFPL7Ye01Jzin4jH8104 6k 

LpiXB+OCloFRqsCmy5/JCrgvR01Rw2rolg6uXgK8xKdybfSXPkJx4wlAOd9GdGAqRycOGF 

0XtyzpS+bASvdt2UJMssCXAKTw5bi+sUzuTbeX2xPJwDsPvuevICZHVGwnqJemvVUrHlDD 

hnMzYzFZfTqeZ6sYAZCvsAiCYghRB6fK9JJV/vj 9CzFlvf yFPfYYH7 50NHjMdDr5qrVbSm 

4hK2GFZIVPnyxYHwTafKHhbU2aQ5KFZbBGMwIikfBRMVfsqz3hpKa5Pd+NZELIwQ4FWlWg 

rIzL+jwLelCfDk2V4SntsK+CFxBVGbU6dWpQYe2x0Bjat5yjbgYfXdz/vXfNxjHoAiUYwt 

4ZNwK0+UG78+Elrtw2UoIUPuQoCpCXh9EMeaACc7gSKY2KfuY10FeCHZ00cl6a4M82DutE 

6JhrX6UfR08r9QmxVnZu0/MW2vbWNS6rCUvsw78zWpChy3VllbxTyofETq9WofZ3u+bomL 

8WgchTd/QPyHMaky37tXEhrjZxUkgJtI0oA12kVaTDERIwBnhQYM3mzp48n8wCq8qH2JP7 

8DS0QwCHMolJQPinj f aOxaCR5wE9mhJGHj tTOpXx3GkLNlNuZYq7tbxYznGNJ2VgwUPpCQp 

pohcWmFB177 90cTc59zt9kV6A3MyeI/lZCP5iW4-Vj PEa6h5CWhqHDT3mvDXSAJ8Wx66XiI 

EJmtzillDpnt0phJpCDAPyM2XO2bJGrPnimSbUsaELQWdMmtUyc2y5TDIlpqjKMNUlytlH 

dmN2jly2+hHplkzgxxXKhilI/JtC97X2GBbm7nlUnICG6sAbxq61BHX5sNslTzWChjYhtF 

lMuCezTUmflLBgGPgh6Uv3oyUVoasRmsKi6qbqweDdxXfZD3uFR/iJNLUzwnt3/PJwtPJp 

JHJ+SIa/hkB9+alMZXfSkMQaBpAE7/BfzRHsH-09fDTL+kBFdO0w0fvkTo9AlfVF99wiAJ0 

hZt7q+eGWkPi5SRO+9/T710r7wNvC9NELRfsziq/v+8LMl7 9yjjCin0chAZTv09iA8i28gQ 

otzjdFXlfE3vL0winrP/61GSfqZhWc2Ho/m7FmqA9pJQVCRsVXXQOSWAZdPC3a75Jxyoa8h 

HDxgluKRaAFlxQboHeRlZ9GQHoia9ucQORhrbIu0S2OAf j99QjmszP3gQ64Pw+EakfS+lY 

QYbauY9Z4-8bRf+G8JnhRZIvcyu5ylRW74goguqs6BSf6NcuC3rBJhf30xnl51/a8SraFtz 

UR4rv+eqj QyE= 

Connection : Keep-Alive 

Host: www. websitexyz . com 

HTTP/1.0 200 OK 

Content-Length : 16485 

Content-Type: text /html 

<html><head><title>WebsiteXYZ</title> 



4^ (^m&^m as part of a URL 

http : / /www . websitexyz • com/resource/ ?Vchain-50U+F61oliyiMJzRinZs 6Qls!RhxlUE3a 
rtX4ax56AJdJxYR7dzyPNglg+cwEOzzjT+v8ywbpyuugQvjluZSSVDfkbje/C+NV8sLfp5d 
3eaTykzeP+siJxl7wg3njzn2mLOnRKrXwWuX6gW3gR7 6zVuIz0ylwS9bZzSiu+ImN/SaHRS 
3eqBFPL7Ye01Jzin4jH81046kLpiXB-hOCloFRqsCmy5/JCrgvR01Rw2rolg6uXgK8xKdybf 
SXPkJx4wlAOd9GdGAqRycOGFoXtyzpS+bASvdt2UJMssCXAKTw5bi+sUzuTbeX2xPJwDsPv 
uevICZHVGwnqJemvVUrHlDDhnMzYzFZfTqeZ6sYAZCvsAiCYghRB6fK9JJV/vj9CzFlvfyF 
PfYYH750NHjMdDr5qrVbSm4hK2GFZIVPnyxYHwTafKHhbU2aQ5KFZbBGMwIikfBRMVfsqz3 
hpKa5Pd+NZELIwQ4FWlWgrIzL+jwLelCfDk2V4SntsK+CFxBVGbU6dWpQYe2x0Bjat5yjbg 
YfXdz/vXfNxjHoAiUYwt4ZNwK0+UG78+Elrtw2UoIUPuQoCpCXh9EMeaACc7gSKY2KfuY10 
FeCHZ00cl6a4M82DUtE6JhrX6UfR08r9QmxVnZu0/MW2vbWNS6rCUvsw78zWpChy3VllbxT 
yofETq9WofZ3u+bdmL8WgchTd/QPyHMaky37tXEhrjZxUkgJtI0oAl2kVaTDERIwBnhQYM3 
mzp48n8wCq8qH2JP78DSOQwCHMolJQPiaj f aOxaCR5wE9mhJGHj tTOpXx3GkLNlNuZYq7tbx 
YznGNJ2VgwUPpCQppohcWmFB177 90cTc59zt9kV6A3MyeI/lZCP5iW+Vj PEa6h5CWhqHDT3 
mvDXSAJ8Wx66XiIEJmtzillDpnt0phJpCDAPyM2XO2bJGrPnimSbUsaELQWdMmtUyczy5TD 
IlpqjKMNUlytlHdinN2jly2+hHplkzgxxXKhilI/JtC97X2GBbm7nlUnICG6sAbxq61BHX5s 
NslTzWChjYhtFlMuCezTUmflLBgGPgh6Uv3oyUVoasRinsKi6qbqweDdxXfZD3uFR/iJNLUz 
wnt3/PJwtPJpJHJ+SIa/hkB9+alMZXfSkMQaBpAE7/BfzRHs-f09fDTL+kBFdO0w0fvkTo9A 
lfVF99wiAJ0hZt7q+eGWkPi5SRO+9/T710r7wNvC9NELRfsziq/v+8LM179yjjCm0chAZTv 
09iA8i28gQotzjdFXlfE3vL0wmrP/61GSfqZhWc2Ho/m7FinqA9pJQVCRsVXXQOSWAZdPC3a 
75Jxyoa8hHDxgluKRaAFlxQboHeRlZ9GQHoia9ucQORhrbIu0S2OAf j99QjInszP3gQ64Pw+ 
EakfS+lYQYbauY9Z+8bRf+G8JnhRZIvcyu5ylRW74goguqs6BSf 6NcuC3rBJhf30xnl51/a 

8 S r aFt zUR4 rv+ eq j QyE- 



Fig. 10 



1010 



Delegate 
Further 
Permission By 
E-mail Or 
Other Means 




Delegate Permission (Using 
Digital Signature) to Access A 
Service & Further Delegate 
Permission (Using 
Personal Area Network 
Physical Presence Exists) 




1000 



Fig. 1 1 



SYNC 
DELEGATION 
DEVICE WITH 
RECEIVING 
DEVICE 



1102 




DELEGATE ONE OR 
MORE PERMISSIONS 
(USING A DIGITAL 
SIGNATURE) OVER AD 
HOC NETWORK IN PAN 



PROVIDE ACCESS TO 
SERVICE OVER SECOND 
COMPUTER NETWORK 



1104 

DELEGATE ONE OR 
MORE FURTHER 
PERMISSIONS VIA 
E-MAIL OR OTHER 
MEANS 




Fig. 12 




DETERMINE DELEGATEE 

IDENTITY & KEY 
INFORMATION - VERIFY 
BY PHYSICAL PRESENCE 



DELEGATE PERMISSION 

OVER PAN (DIGITAL 
SIGNATURE) RELATING 
TO THE SERVICE - MAY BE 
LIMITED IN DURATION 



1202 



1203 



DELEGATE 
FURTHER 
PERMISSIONS VIA 
E-MAIL OR 
OTHER MEANS 




Fig. 13 



1301 



1302 






r 


RECEIVE KEY INFORMATION 


1 


r 



TAKE HASH OF KEY AND VERBALLY 
CONFIRM HASH WITH DELEGATEE 



1303 



1304 



NO PERM 
SIGNA 


r 1 

ISSION (DIGITAL 
TURE) 




r 


PROVIDE ACCESS TO SERVICE 



Fig. 14 



START 







r 


1401 


DELEGATE PERMISSION (DIGITAL 
SIGNATURE) RELATING TO SERVICE 
OVER AD HOC NETWORK IN PAN 






r 


1402 


RECEIVE CREDENTIAL INFORMATION 
VIA CREDENTIAL TRANSMISSION 
MECHANISM OVER SECOND COMPUTER 
NETWORK 






r 


1403 


PROVIDE ACCESS TO SERVICE 






r 



Fig. 15 



START 







r 


1501 


CREATE PREGENERATED VALUES 






r 


1502 


TRANSFER (MAY INCLUDE SYNC.) TO 
DELEGATION DEVICE 






r 


1503 


USE VALUES TO CREATE DIGITAL 
SIGNATURE 






r 


1504 


DELEGATE PERMISSION 
(DIGITAL SIGNATURE) 



Fig. 16 




1601 



1602 



DELEGATE PERMISSION - 

LOCATION OF 
DELEGATION RECORDED 



1603 



CONTROL 
ACCESS USING 
LOCATION 
(e.g., Revoke 
Permission) 



MONITOR 
DELEGATION 

LOCATION 
INFORMATION 
(e.g., Marketing, 
Legal) 



Fig. 17 



START 





r 




COLLECT IDENTITY AND KEY 


1701 


EsfFORMATION DURING MEETING 




USING PAN 




r 



1702 



1703 



STORE IDENTITY & KEY 
INFORMATION IN A DELEGATION 
DEVICE 




r 


DISTRIBUTE PERM 
(DIGITAL SIGNAL 
SERVICE AND P 
FURTHER I 


ISSION OVER PAN 
URE) TO ACCESS 
AUTHORITY TO 
)ELEGATE 



▼ 



